{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,4]],"date-time":"2026-02-04T21:34:51Z","timestamp":1770240891391,"version":"3.49.0"},"reference-count":41,"publisher":"MDPI AG","issue":"1","license":[{"start":{"date-parts":[[2021,1,5]],"date-time":"2021-01-05T00:00:00Z","timestamp":1609804800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"National Key R&amp;D Program of China","award":["2016YFB0801004"],"award-info":[{"award-number":["2016YFB0801004"]}]},{"DOI":"10.13039\/501100001809","name":"NSFC","doi-asserted-by":"publisher","award":["61972297"],"award-info":[{"award-number":["61972297"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"NSFC","doi-asserted-by":"publisher","award":["U1636107"],"award-info":[{"award-number":["U1636107"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>The network security situation of campus networks on CERNET (China Education and Research Network) has received great concern. However, most network managers have no complete picture of the network security because of its special management and the rapid growth of network assets. In this investigation, the security of campus networks belonging to seven universities in Wuhan was investigated. A tool called \u201cWebHunt\u201d was designed for campus networks, and with its help, the network security risks were found. Differently from existing tools for network probing, WebHunt can adopt the network scale and special rules of the campus network. According to the characteristics of campus websites, a series of functions were integrated into WebHunt, including reverse resolution of domain names, active network detection and fingerprint identification for software assets. Besides, WebHunt builds its vulnerability intelligence database with a knowledge graph structure and locates the vulnerabilities through matching knowledge graph information. Security assessments of seven universities presents WebHunt\u2019s applicability for campus networks. Besides, it also shows that many security risks are concealed in campus networks, such as non-compliance IP addresses and domain names, system vulnerabilities and so on. The security reports containing risks have been sent to the relevant universities, and positive feedback was received.<\/jats:p>","DOI":"10.3390\/s21010306","type":"journal-article","created":{"date-parts":[[2021,1,5]],"date-time":"2021-01-05T10:35:12Z","timestamp":1609842912000},"page":"306","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":18,"title":["Assessing the Security of Campus Networks: The Case of Seven Universities"],"prefix":"10.3390","volume":"21","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9592-3283","authenticated-orcid":false,"given":"Rui","family":"Zheng","sequence":"first","affiliation":[{"name":"Key Laboratory of Aerospace Information Security and Trusted Computing, Ministry of Education, School of Cyber Science and Engineering, Wuhan University, Wuhan 430072, China"},{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hao","family":"Ma","sequence":"additional","affiliation":[{"name":"Key Laboratory of Aerospace Information Security and Trusted Computing, Ministry of Education, School of Cyber Science and Engineering, Wuhan University, Wuhan 430072, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Qiuyun","family":"Wang","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jianming","family":"Fu","sequence":"additional","affiliation":[{"name":"Key Laboratory of Aerospace Information Security and Trusted Computing, Ministry of Education, School of Cyber Science and Engineering, Wuhan University, Wuhan 430072, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhengwei","family":"Jiang","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China"},{"name":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2021,1,5]]},"reference":[{"key":"ref_1","unstructured":"CERNIC (2019, January 11). About CERNET. Available online: http:\/\/www.edu.cn\/english\/cernet\/introduction\/200603\/t20060323_158626.shtml."},{"key":"ref_2","unstructured":"Rosenblatt, J. (2019, October 11). Why Hackers Love Universities. Available online: https:\/\/evolllution.com\/technology\/security_compliance\/why-hackers-love-universities\/."},{"key":"ref_3","unstructured":"CERNIC (2019, October 11). Measures for the Registration of Domain Names on edu.cn. Available online: http:\/\/www.nic.edu.cn\/RS\/policy\/policy1.txt."},{"key":"ref_4","unstructured":"Network, C.E. (2019, October 11). Stay Away from Fake Universities, \u201cedu.cn\u201d become an Important Symbol of Formal Colleges and Universities. Available online: https:\/\/www.edu.cn\/edu\/gao_deng\/gao_jiao_news\/201505\/t20150528_1264548.shtml."},{"key":"ref_5","unstructured":"CERNIC (2014, November 05). Statistics of IPv4 Addresses Assigned by CERNET (1994\u20132014). Technical Report, CERNET. Available online: http:\/\/www.edu.cn\/szkfz_12718\/20141105\/t20141105_1198820.shtml."},{"key":"ref_6","unstructured":"Cert, A. (2006, July 03). In-Depth Analysis Report ON Wannacry Ransomware. Technical Report, Antiy Labs. Available online: https:\/\/www.antiy.net\/p\/in-depth-analysis-report-on-wannacry-ransomware\/."},{"key":"ref_7","unstructured":"Chen, S. (2020, November 01). Why China\u2019s Universities Are So Vulnerable to WannaCry Global Cyberattack. Available online: https:\/\/www.scmp.com\/news\/china\/policies-politics\/article\/2094514\/why-chinas-universities-are-so-vulnerable-wannacry."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"2696","DOI":"10.1002\/sec.1262","article-title":"ShoVAT: Shodan-based vulnerability assessment tool for Internet-facing services","volume":"9","author":"Genge","year":"2016","journal-title":"Secur. Commun. Netw."},{"key":"ref_9","unstructured":"Montz, A.B., Mosberger, D., O\u2019Mally, S.W., Peterson, L.L., and Proebsting, T.A. (1995, January 4\u20135). Scout: A communications-oriented operating system. Proceedings of the IEEE 5th Workshop on Hot Topics in Operating Systems (HotOS-V), Orcas Island, WA, USA."},{"key":"ref_10","first-page":"404","article-title":"Contactless Vulnerability Analysis using Google and Shodan","volume":"23","author":"Simon","year":"2017","journal-title":"J. UCS"},{"key":"ref_11","unstructured":"Spiceworks Inc. (2021, January 04). pfSense. Available online: https:\/\/www.pfsense.org\/."},{"key":"ref_12","unstructured":"Spiceworks Inc. (2006, January 11). About Spiceworks. Available online: https:\/\/www.spiceworks.com\/about\/."},{"key":"ref_13","doi-asserted-by":"crossref","first-page":"e1633","DOI":"10.1016\/j.na.2009.02.002","article-title":"Defining methodologies for developing J2EE web-based information systems","volume":"71","author":"Boranbayev","year":"2009","journal-title":"Nonlinear Anal. Theory Methods Appl."},{"key":"ref_14","unstructured":"Stevens, W.R. (1994). TCP\/IP Illustrated Vol. I: The Protocols, Pearson Education India."},{"key":"ref_15","unstructured":"Panjwani, S., Tan, S., Jarrin, K.M., and Cukier, M. (July, January 28). An experimental evaluation to determine if port scans are precursors to an attack. Proceedings of the IEEE 2005 International Conference on Dependable Systems and Networks (DSN\u201905), Yokohama, Japan."},{"key":"ref_16","unstructured":"Gordon, L. (2021, January 04). The Official Nmap Project Guide to Network Discovery and Security Scanning. Available online: https:\/\/nmap.org\/book\/."},{"key":"ref_17","unstructured":"Seba Garcia (2019, October 11). Dnamp Wiki. Available online: https:\/\/sourceforge.net\/p\/dnmap\/wiki\/Home\/."},{"key":"ref_18","unstructured":"Graham, R. (2021, January 04). Masscan: The Entire Internet in 3 min. Available online: https:\/\/blog.erratasec.com\/2013\/09\/masscan-entire-internet-in-3-minutes.html."},{"key":"ref_19","unstructured":"Durumeric, Z., Wustrow, E., and Halderman, J.A. (2013, January 14\u201316). ZMap: Fast Internet-wide scanning and its security applications. Proceedings of the 22nd {USENIX} Security Symposium ({USENIX} Security 13), Washington, DC, USA."},{"key":"ref_20","unstructured":"Michael, A.D., Kirby, K., and Kevin, C. (2021, January 04). p0f: Passive OS Fingerprinting Tool. Available online: https:\/\/github.com\/skord\/p0f."},{"key":"ref_21","unstructured":"Fjellskal, E. (2021, January 04). Passive Real-Time Asset Detection System. Available online: https:\/\/github.com\/gamelinux\/prads."},{"key":"ref_22","unstructured":"Kollmann, E. (2010, May 19). Chatter on the Wire: A Look at DHCP Traffic. Available online: Http:\/\/myweb.cableone.net\/xnih\/download\/chatter-dhcp.pdf."},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Barnes, J., and Crowley, P. (2013, January 21\u201322). k-p0f: A high-throughput kernel passive OS fingerprinter. Proceedings of the IEEE Architectures for Networking and Communications Systems, San Jose, CA, USA.","DOI":"10.1109\/ANCS.2013.6665187"},{"key":"ref_24","first-page":"70","article-title":"Detection and analysis of campus network common server database","volume":"39","author":"Wei","year":"2018","journal-title":"J. Commun."},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"Bartlett, G., Heidemann, J., and Papadopoulos, C. (2007, January 24\u201326). Understanding passive and active service discovery. Proceedings of the 7th ACM SIGCOMM Conference on Internet Measurement, San Diego, CA, USA.","DOI":"10.1145\/1298306.1298314"},{"key":"ref_26","unstructured":"Matherly, J. (2020, December 27). Complete Guide to Shodan. Available online: Http:\/\/myweb.cableone.net\/xnih\/download\/chatter-dhcp.pdf."},{"key":"ref_27","unstructured":"Walden, J. (2021, January 04). Censys: A Better IPv4 Scan Search Engine. Available online: https:\/\/censys.io\/."},{"key":"ref_28","unstructured":"(2019, October 23). Team, ZoomEye. Available online: https:\/\/www.zoomeye.org\/statistics."},{"key":"ref_29","unstructured":"BAIMAOHUI (2019, October 23). FOFA. Available online: https:\/\/fofa.so\/?locale=en."},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"46","DOI":"10.1109\/MS.2015.77","article-title":"An empirical evaluation of web-based fingerprinting","volume":"32","author":"Khademi","year":"2015","journal-title":"IEEE Softw."},{"key":"ref_31","unstructured":"Lee, D., Rowe, J., Ko, C., and Levitt, K. (2002, January 9\u201313). Detecting and defending against Web-server fingerprinting. Proceedings of the IEEE 18th Annual Computer Security Applications Conference, Las Vegas, NV, USA."},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Huang, Z., Xia, C., Sun, B., and Xue, H. (2015, January 23\u201325). Analyzing and summarizing the web server detection technology based on HTTP. Proceedings of the 2015 6th IEEE International Conference on Software Engineering and Service Science (ICSESS), Beijing, China.","DOI":"10.1109\/ICSESS.2015.7339231"},{"key":"ref_33","first-page":"679","article-title":"An efficient method of web fingerprint identification","volume":"33","author":"Yan","year":"2016","journal-title":"J. Univ. Chin. Acad. Sci."},{"key":"ref_34","first-page":"562","article-title":"Cyberspace device identification based on K-means with cosine distance measure","volume":"4","author":"Cao","year":"2016","journal-title":"J. Univ. Chin. Acad. Sci."},{"key":"ref_35","first-page":"141","article-title":"Web Server Fingerprint Identification Technology Based on KNN and GBDT","volume":"45","author":"Nan","year":"2018","journal-title":"Comput. Sci."},{"key":"ref_36","doi-asserted-by":"crossref","unstructured":"Rimmer, V., Preuveneers, D., Juarez, M., Van Goethem, T., and Joosen, W. (2017). Automated website fingerprinting through deep learning. arXiv.","DOI":"10.14722\/ndss.2018.23105"},{"key":"ref_37","doi-asserted-by":"crossref","unstructured":"Tian, Y., and Pan, L. (2015, January 19\u201321). Predicting short-term traffic flow by long short-term memory recurrent neural network. Proceedings of the 2015 IEEE International Conference on Smart City\/SocialCom\/SustainCom (SmartCity), Chengdu, China.","DOI":"10.1109\/SmartCity.2015.63"},{"key":"ref_38","unstructured":"Greenbone Networks (2021, January 04). The Open Vulnerability Assessment System (OpenVAS). Available online: https:\/\/www.openvas.org\/."},{"key":"ref_39","unstructured":"Sanguino, L.A.B., and Uetz, R. (2017). Software Vulnerability Analysis Using CPE and CVE. arXiv."},{"key":"ref_40","unstructured":"Martinez, E. (2019, October 11). VirusTotal += Passive DNS Replication. Available online: https:\/\/blog.virustotal.com\/2013\/04\/virustotal-passive-dns-replication.html."},{"key":"ref_41","unstructured":"Bostock, M. (2019, October 11). Data-Driven Documents Introduction. Available online: https:\/\/d3js.org\/#introduction."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/21\/1\/306\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T05:07:04Z","timestamp":1760159224000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/21\/1\/306"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,1,5]]},"references-count":41,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2021,1]]}},"alternative-id":["s21010306"],"URL":"https:\/\/doi.org\/10.3390\/s21010306","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,1,5]]}}}